Add support for setting raw private HMAC keys

author Matt Caswell <matt@openssl.org>

Mon, 5 Mar 2018 15:13:43 +0000 (15:13 +0000)

committer Matt Caswell <matt@openssl.org>

Thu, 15 Mar 2018 12:47:27 +0000 (12:47 +0000)
author Matt Caswell <matt@openssl.org>
Mon, 5 Mar 2018 15:13:43 +0000 (15:13 +0000)
committer Matt Caswell <matt@openssl.org>
Thu, 15 Mar 2018 12:47:27 +0000 (12:47 +0000)
diff --git a/apps/dgst.c b/apps/dgst.c

index 45745507962392aeedcb8326889f2b39bca6f67d..d5646c91e25bbfe0ed1a715ee9ea0e1494369934 100644 (file)
--- a/apps/dgst.c
+++ b/apps/dgst.c
@@ -277,8 +277,8 @@ int dgst_main(int argc, char **argv)
      }
  
      if (hmac_key != NULL) {
-        sigkey = EVP_PKEY_new_mac_key(EVP_PKEY_HMAC, impl,
-                                      (unsigned char *)hmac_key, -1);
+        sigkey = EVP_PKEY_new_private_key(EVP_PKEY_HMAC, impl,
+                                          (unsigned char *)hmac_key, -1);
          if (sigkey == NULL)
              goto end;
      }
diff --git a/crypto/evp/p_lib.c b/crypto/evp/p_lib.c

index 7ec1dd7800ffe1faf508edb6b52500839dd1e067..a92b169f7a6970b999f731ff553a741f3d829daf 100644 (file)
--- a/crypto/evp/p_lib.c
+++ b/crypto/evp/p_lib.c
@@ -219,7 +219,8 @@ static int pkey_set_type(EVP_PKEY *pkey, ENGINE *e, int type, const char *str,
      return 1;
  }
  
-EVP_PKEY *EVP_PKEY_new_private_key(int type, ENGINE *e, unsigned char *priv,
+EVP_PKEY *EVP_PKEY_new_private_key(int type, ENGINE *e,
+                                   const unsigned char *priv,
                                     size_t len)
  {
      EVP_PKEY *ret = EVP_PKEY_new();
@@ -248,7 +249,8 @@ EVP_PKEY *EVP_PKEY_new_private_key(int type, ENGINE *e, unsigned char *priv,
      return NULL;
  }
  
-EVP_PKEY *EVP_PKEY_new_public_key(int type, ENGINE *e, unsigned char *pub,
+EVP_PKEY *EVP_PKEY_new_public_key(int type, ENGINE *e,
+                                  const unsigned char *pub,
                                    size_t len)
  {
      EVP_PKEY *ret = EVP_PKEY_new();
diff --git a/crypto/hmac/hm_ameth.c b/crypto/hmac/hm_ameth.c

index 4d830b8ded62c6e8e182b6a5819a1cefe906c1b6..b8c13331cb45db42e30bf09b338b7725bbab7b98 100644 (file)
--- a/crypto/hmac/hm_ameth.c
+++ b/crypto/hmac/hm_ameth.c
@@ -11,6 +11,7 @@
  #include "internal/cryptlib.h"
  #include <openssl/evp.h>
  #include "internal/asn1_int.h"
+#include "internal/evp_int.h"
  
  /*
   * HMAC "ASN1" method. This is just here to indicate the maximum HMAC output
@@ -49,6 +50,28 @@ static int hmac_pkey_public_cmp(const EVP_PKEY *a, const EVP_PKEY *b)
      return ASN1_OCTET_STRING_cmp(EVP_PKEY_get0(a), EVP_PKEY_get0(b));
  }
  
+static int hmac_set_priv_key(EVP_PKEY *pkey, const unsigned char *priv,
+                             size_t len)
+{
+    ASN1_OCTET_STRING *os;
+
+    if (pkey->pkey.ptr != NULL)
+        return 0;
+
+    os = ASN1_OCTET_STRING_new();
+    if (os == NULL)
+        return 0;
+
+
+    if (!ASN1_OCTET_STRING_set(os, priv, len)) {
+        ASN1_OCTET_STRING_free(os);
+        return 0;
+    }
+
+    pkey->pkey.ptr = os;
+    return 1;
+}
+
  const EVP_PKEY_ASN1_METHOD hmac_asn1_meth = {
      EVP_PKEY_HMAC,
      EVP_PKEY_HMAC,
@@ -67,5 +90,17 @@ const EVP_PKEY_ASN1_METHOD hmac_asn1_meth = {
  
      hmac_key_free,
      hmac_pkey_ctrl,
-    0, 0
+    NULL,
+    NULL,
+
+    NULL,
+    NULL,
+    NULL,
+
+    NULL,
+    NULL,
+    NULL,
+
+    hmac_set_priv_key,
+    NULL,
  };
diff --git a/crypto/kdf/tls1_prf.c b/crypto/kdf/tls1_prf.c

index 339e10c1b7c9e5cfb33cabf6078d769ffe7fb5f0..f618362c0a2c6b4f6bb07dbe1021357d37d113eb 100644 (file)
--- a/crypto/kdf/tls1_prf.c
+++ b/crypto/kdf/tls1_prf.c
@@ -193,7 +193,7 @@ static int tls1_prf_P_hash(const EVP_MD *md,
      if (ctx == NULL || ctx_tmp == NULL || ctx_init == NULL)
          goto err;
      EVP_MD_CTX_set_flags(ctx_init, EVP_MD_CTX_FLAG_NON_FIPS_ALLOW);
-    mac_key = EVP_PKEY_new_mac_key(EVP_PKEY_HMAC, NULL, sec, sec_len);
+    mac_key = EVP_PKEY_new_private_key(EVP_PKEY_HMAC, NULL, sec, sec_len);
      if (mac_key == NULL)
          goto err;
      if (!EVP_DigestSignInit(ctx_init, NULL, md, NULL, mac_key))
diff --git a/include/openssl/evp.h b/include/openssl/evp.h

index 04797635b965f2a302fcb3d83665d1e9c84ec8c7..d80ca41e65011fda25d3361ebcf2e4b3429f7208 100644 (file)
--- a/include/openssl/evp.h
+++ b/include/openssl/evp.h
@@ -1337,9 +1337,11 @@ void EVP_PKEY_CTX_set0_keygen_info(EVP_PKEY_CTX *ctx, int *dat, int datlen);
  
  EVP_PKEY *EVP_PKEY_new_mac_key(int type, ENGINE *e,
                                 const unsigned char *key, int keylen);
-EVP_PKEY *EVP_PKEY_new_private_key(int type, ENGINE *e, unsigned char *priv,
+EVP_PKEY *EVP_PKEY_new_private_key(int type, ENGINE *e,
+                                   const unsigned char *priv,
                                     size_t len);
-EVP_PKEY *EVP_PKEY_new_public_key(int type, ENGINE *e, unsigned char *pub,
+EVP_PKEY *EVP_PKEY_new_public_key(int type, ENGINE *e,
+                                  const unsigned char *pub,
                                    size_t len);
  
  void EVP_PKEY_CTX_set_data(EVP_PKEY_CTX *ctx, void *data);
diff --git a/ssl/statem/extensions.c b/ssl/statem/extensions.c

index 3dc4e8ed942cd8c019c30541987f1ca6141bc9f5..9b8fc43bf1c1c4593b25190267cf8c467c97acfb 100644 (file)
--- a/ssl/statem/extensions.c
+++ b/ssl/statem/extensions.c
@@ -1559,7 +1559,8 @@ int tls_psk_do_binder(SSL *s, const EVP_MD *md, const unsigned char *msgstart,
          goto err;
      }
  
-    mackey = EVP_PKEY_new_mac_key(EVP_PKEY_HMAC, NULL, finishedkey, hashsize);
+    mackey = EVP_PKEY_new_private_key(EVP_PKEY_HMAC, NULL, finishedkey,
+                                      hashsize);
      if (mackey == NULL) {
          SSLfatal(s, SSL_AD_INTERNAL_ERROR, SSL_F_TLS_PSK_DO_BINDER,
                   ERR_R_INTERNAL_ERROR);
diff --git a/ssl/statem/extensions_srvr.c b/ssl/statem/extensions_srvr.c

index a1f92b076d75709e3f498b5e675e0360fd281073..0f997c40f552e7362c7fe4f937d6b6749ff16a7b 100644 (file)
--- a/ssl/statem/extensions_srvr.c
+++ b/ssl/statem/extensions_srvr.c
@@ -752,9 +752,9 @@ int tls_parse_ctos_cookie(SSL *s, PACKET *pkt, unsigned int context, X509 *x,
  
      /* Verify the HMAC of the cookie */
      hctx = EVP_MD_CTX_create();
-    pkey = EVP_PKEY_new_mac_key(EVP_PKEY_HMAC, NULL,
-                                s->session_ctx->ext.cookie_hmac_key,
-                                sizeof(s->session_ctx->ext.cookie_hmac_key));
+    pkey = EVP_PKEY_new_private_key(EVP_PKEY_HMAC, NULL,
+                                    s->session_ctx->ext.cookie_hmac_key,
+                                    sizeof(s->session_ctx->ext.cookie_hmac_key));
      if (hctx == NULL || pkey == NULL) {
          EVP_MD_CTX_free(hctx);
          EVP_PKEY_free(pkey);
@@ -1762,9 +1762,9 @@ EXT_RETURN tls_construct_stoc_cookie(SSL *s, WPACKET *pkt, unsigned int context,
  
      /* HMAC the cookie */
      hctx = EVP_MD_CTX_create();
-    pkey = EVP_PKEY_new_mac_key(EVP_PKEY_HMAC, NULL,
-                                s->session_ctx->ext.cookie_hmac_key,
-                                sizeof(s->session_ctx->ext.cookie_hmac_key));
+    pkey = EVP_PKEY_new_private_key(EVP_PKEY_HMAC, NULL,
+                                    s->session_ctx->ext.cookie_hmac_key,
+                                    sizeof(s->session_ctx->ext.cookie_hmac_key));
      if (hctx == NULL || pkey == NULL) {
          SSLfatal(s, SSL_AD_INTERNAL_ERROR, SSL_F_TLS_CONSTRUCT_STOC_COOKIE,
                   ERR_R_MALLOC_FAILURE);
diff --git a/ssl/t1_enc.c b/ssl/t1_enc.c

index 774625a2022756f3ad34547356df2ffc5f41285b..a9e28bcd9066158e9444a01ecd448829fa9894e7 100644 (file)
--- a/ssl/t1_enc.c
+++ b/ssl/t1_enc.c
@@ -257,8 +257,8 @@ int tls1_change_cipher_state(SSL *s, int which)
  
      if (!(EVP_CIPHER_flags(c) & EVP_CIPH_FLAG_AEAD_CIPHER)) {
          /* TODO(size_t): Convert this function */
-        mac_key = EVP_PKEY_new_mac_key(mac_type, NULL,
-                                       mac_secret, (int)*mac_secret_size);
+        mac_key = EVP_PKEY_new_private_key(mac_type, NULL,
+                                           mac_secret, (int)*mac_secret_size);
          if (mac_key == NULL
              || EVP_DigestSignInit(mac_ctx, NULL, m, NULL, mac_key) <= 0) {
              EVP_PKEY_free(mac_key);
diff --git a/ssl/tls13_enc.c b/ssl/tls13_enc.c

index 5982c8e93d14e125e6de399be9b1480ffc54014f..23a2c59ecfde2e9f318c4c266002ca8bb5036848 100644 (file)
--- a/ssl/tls13_enc.c
+++ b/ssl/tls13_enc.c
@@ -248,10 +248,10 @@ size_t tls13_final_finish_mac(SSL *s, const char *str, size_t slen,
      }
  
      if (str == s->method->ssl3_enc->server_finished_label)
-        key = EVP_PKEY_new_mac_key(EVP_PKEY_HMAC, NULL,
+        key = EVP_PKEY_new_private_key(EVP_PKEY_HMAC, NULL,
                                     s->server_finished_secret, hashlen);
      else
-        key = EVP_PKEY_new_mac_key(EVP_PKEY_HMAC, NULL,
+        key = EVP_PKEY_new_private_key(EVP_PKEY_HMAC, NULL,
                                     s->client_finished_secret, hashlen);
  
      if (key == NULL
author	Matt Caswell <matt@openssl.org>
	Mon, 5 Mar 2018 15:13:43 +0000 (15:13 +0000)
committer	Matt Caswell <matt@openssl.org>
	Thu, 15 Mar 2018 12:47:27 +0000 (12:47 +0000)
apps/dgst.c		patch \| blob \| history
crypto/evp/p_lib.c		patch \| blob \| history
crypto/hmac/hm_ameth.c		patch \| blob \| history
crypto/kdf/tls1_prf.c		patch \| blob \| history
include/openssl/evp.h		patch \| blob \| history
ssl/statem/extensions.c		patch \| blob \| history
ssl/statem/extensions_srvr.c		patch \| blob \| history
ssl/t1_enc.c		patch \| blob \| history
ssl/tls13_enc.c		patch \| blob \| history